A bipartisan group of senators formally introduced a federal breach notification bill Wednesday. The bill would require federal agencies, federal contractors and organizations that are critical to U.S. national security to report security incidents to the Cybersecurity and Infrastructure Security Agency within 24 hours of discovery. Companies that do not report an incident within a 24-hour period could face a maximum financial penalty equal to 0.5% of the previous year’s gross revenue. The measure comes in the wake of a series of significant security incidents, including the SolarWinds supply chain attack.”]
Source: https://www.cuinfosecurity.com/senators-introduce-federal-breach-notification-bill-a-17120